RelPost.exe
- File Path:
C:\Windows\system32\RelPost.exe
- Description: Windows Diagnosis and Recovery
Hashes
| Type |
Hash |
| MD5 |
E351DDC4F470EDEF41D705315CA1F156 |
| SHA1 |
E78D010C9F068709F495A31D319568330A1781FC |
| SHA256 |
509A5A06F26E7CD8FED50D39D36D32D617887F04FDD8EDC2546254DF61C1132F |
| SHA384 |
61EE458F783F495843ECF18C03EF3D416D479CB1EB55D59B786C13A05C023389A34EF5A3DBF054E2EE548ADA1A5DC6D8 |
| SHA512 |
52574C86E8216E4A2A9D779399E7921EF54DDD7E8EF33CBE528B2A07058615836BDA6E3B5F941BB977CD378EBA20224B1003042C7EF23B374882CDED78AD3127 |
| SSDEEP |
3072:xyFp9kpKealesPggZISSa7Je3xNZopLGnAuegPO8evTq2V:mp9kpKpelINJOtFegEv+2V |
| IMP |
3A7C5EC633F86929A4C13B843E65A4F9 |
| PESHA1 |
15E7229AEAE87920BCBB0A30E9926A986FA46F64 |
| PE256 |
F850D897A897FD49D042AEC94122E45583175328DE9C3C67CBA4EE5C103E898A |
Runtime Data
Loaded Modules:
| Path |
| C:\Windows\System32\KERNEL32.DLL |
| C:\Windows\System32\KERNELBASE.dll |
| C:\Windows\SYSTEM32\ntdll.dll |
| C:\Windows\system32\RelPost.exe |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: RelPost.exe.mui
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.1 (WinBuild.160101.0800)
- Product Version: 10.0.19041.1
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 64-bit
File Scan
- VirusTotal Detections: 0/76
- VirusTotal Link: https://www.virustotal.com/gui/file/509a5a06f26e7cd8fed50d39d36d32d617887f04fdd8edc2546254df61c1132f/detection
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.